debug jwt test

Author: ekoby

library/credentials.c

@@ -57,6 +57,7 @@ int zt_jwt_parse(const char *jwt_str, zt_jwt *jwt) {
     if (sodium_base642bin((uint8_t *)buf, jwt_len, jwt_str, jwt_len, NULL,
                           &len, &b64_end, sodium_base64_VARIANT_URLSAFE_NO_PADDING) != 0 ||
         *b64_end != '.') {
+        ZITI_LOG(TRACE, "failed to decode JWT header");
         goto error;
     }
     header = json_tokener_parse_verbose(buf, &json_err);
@@ -68,10 +69,12 @@ int zt_jwt_parse(const char *jwt_str, zt_jwt *jwt) {
                           NULL,
                           &len, &b64_end, sodium_base64_VARIANT_URLSAFE_NO_PADDING) != 0 ||
         *b64_end != '.') {
+        ZITI_LOG(TRACE, "failed to decode JWT claims");
         goto error;
     }
     payload = json_tokener_parse_verbose(buf, &json_err);
     if (!payload) {
+        ZITI_LOG(TRACE, "failed to parse JWT claims: %s", json_tokener_error_desc(json_err));
         goto error;
     }
 
@@ -108,6 +111,7 @@ int ziti_credential_from_jwt(const char *jwt, ziti_credential_t **cred) {
 
     if (zt_jwt_parse(jwt, &c->jwt) != 0) {
         free(c);
+        *cred = NULL;
         return ZITI_JWT_INVALID;
     }
     c->type = ZITI_CRED_TYPE_JWT;

tests/test_jwt.cpp

@@ -1,16 +1,16 @@
-// Copyright (c) 2023.  NetFoundry Inc.
+// Copyright (c) 2023-2026.  NetFoundry Inc
 //
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
+// 	Licensed under the Apache License, Version 2.0 (the "License");
+// 	you may not use this file except in compliance with the License.
+// 	You may obtain a copy of the License at
 //
-// https://www.apache.org/licenses/LICENSE-2.0
+// 	https://www.apache.org/licenses/LICENSE-2.0
 //
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
+// 	Unless required by applicable law or agreed to in writing, software
+// 	distributed under the License is distributed on an "AS IS" BASIS,
+// 	WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// 	See the License for the specific language governing permissions and
+// 	limitations under the License.
 
 #include "catch2/catch_test_macros.hpp"
 #include "catch2/matchers/catch_matchers_string.hpp"
@@ -95,10 +95,11 @@ TEST_CASE("zt_jwt_parse","[model]") {
 }
 
 TEST_CASE("jwt cred", "[model]") {
-    ziti_credential_t *cred;
+    ziti_log_init(uv_default_loop(), TRACE, NULL);
+    ziti_credential_t *cred = nullptr;
     int rc = ziti_credential_from_jwt(jwt, &cred);
     CHECK(rc == 0);
-    CHECK(cred != nullptr);
+    REQUIRE(cred != nullptr);
     CHECK(cred->type == ZITI_CRED_TYPE_JWT);
     CHECK(cstr_equals(&cred->jwt.issuer, "https://fd200fd3-a2d9-457f-bc0b-f9b8ee7d2898.production.netfoundry.io:443"));
     ziti_credential_drop(cred);